https://tech.newstatesman.com/security/microsoft-internet-explorer-patch

Microsoft has urgently shipped a security patch for a remote code execution vulnerability affecting Internet Explorer (IE). The vulnerability, which was identified by a researcher at Google, has already been used by hackers to infect victims’ computers.

The software giant’s security team warned that the exploit – CVE-2018-8653 – would enable attackers to infect targets’ computers simply by directing them to a compromised web page. Once the malware has been downloaded, the hackers have the same access rights as the user.